$ rpki-client -vvf repo-rpki.idnic.net/repo/8d03af01-f239-4a1f-81cd-4106bebb2a22/0/F8DF40E4C95F9EBF81453870736995E91BBB92F7.mft File: F8DF40E4C95F9EBF81453870736995E91BBB92F7.mft (raw, json) Hash identifier: JZ2NlnQNS7oB4vimaIY4VF85beO2AdhKcxrgdiJX4X8= Subject key identifier: 9C:B0:36:7C:B7:9C:06:A7:58:7C:3F:81:F7:BE:59:D6:C9:DF:36:EF Authority key identifier: F8:DF:40:E4:C9:5F:9E:BF:81:45:38:70:73:69:95:E9:1B:BB:92:F7 Certificate issuer: /CN=F8DF40E4C95F9EBF81453870736995E91BBB92F7 Certificate serial: 629935C1896B4C060831A22C59531437C57ECFE6 Authority info access: rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F8DF40E4C95F9EBF81453870736995E91BBB92F7.cer Subject info access: rsync://repo-rpki.idnic.net/repo/8d03af01-f239-4a1f-81cd-4106bebb2a22/0/F8DF40E4C95F9EBF81453870736995E91BBB92F7.mft Manifest number: 0266 Signing time: Thu 07 Aug 2025 12:30:01 +0000 Manifest this update: Thu 07 Aug 2025 12:25:01 +0000 Manifest next update: Sun 10 Aug 2025 17:47:01 +0000 Files and hashes: 1: 3130332e3234302e3130382e302f32342d3234203d3e203538383139.roa (hash: D+zqgakWFBdHD5/mV/z3ocZSo/C1/ZxuuNBMHS2Lcrc=) 2: F8DF40E4C95F9EBF81453870736995E91BBB92F7.crl (hash: lH643GPXh+aOiBLMuXtVJ0BOAbCEFndi8aEzAQtAuxg=) 3: 3130332e3234302e3131312e302f32342d3234203d3e203538383139.roa (hash: qsAy9+8K3YocUUVABAHpwtAAQ9W+nqV1JTT37/pzGo4=) 4: 3130332e3234302e3131302e302f32342d3234203d3e203538383139.roa (hash: kInQZ6+a0szsE+89xOKFo2QCmfmxhWma36K3DO0bgYU=) 5: 3130332e3234302e3130392e302f32342d3234203d3e203538383139.roa (hash: 5nvoiGj4OjH2+HTzWQu4bmTNWJXJYHQTVDrsbt8AseA=) 6: 3130332e3234302e3130382e302f32322d3234203d3e203538383139.roa (hash: XeC/h72IOu7dA+NCUWie+KTWNqBhpQyXbuk3uFJs7XQ=) Validation: OK Signature path: rsync://repo-rpki.idnic.net/repo/8d03af01-f239-4a1f-81cd-4106bebb2a22/0/F8DF40E4C95F9EBF81453870736995E91BBB92F7.crl rsync://repo-rpki.idnic.net/repo/8d03af01-f239-4a1f-81cd-4106bebb2a22/0/F8DF40E4C95F9EBF81453870736995E91BBB92F7.mft rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F8DF40E4C95F9EBF81453870736995E91BBB92F7.cer rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.crl rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/BA8F77D21E58FE9C939A6B70E2585617E183376B.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/uo930h5Y_pyTmmtw4lhWF-GDN2s.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Sun 10 Aug 2025 17:47:01 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 62:99:35:c1:89:6b:4c:06:08:31:a2:2c:59:53:14:37:c5:7e:cf:e6 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=F8DF40E4C95F9EBF81453870736995E91BBB92F7 Validity Not Before: Aug 7 12:25:01 2025 GMT Not After : Aug 10 17:47:01 2025 GMT Subject: CN=9CB0367CB79C06A7587C3F81F7BE59D6C9DF36EF Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:cc:1e:a6:f5:11:a3:ed:76:5e:fa:8e:53:89:22: 95:bf:0b:11:17:87:84:73:23:52:33:ff:34:cf:9f: 90:d5:e2:53:37:86:02:98:28:72:30:85:2c:90:24: 58:22:3f:61:90:14:13:58:92:64:c5:f1:89:58:26: 7a:07:a6:cc:2c:5c:58:16:4e:f8:2b:9e:4c:c9:93: 23:75:b5:d7:d7:dc:c5:ba:37:23:39:f3:16:ea:f0: 68:64:77:42:0e:ca:83:19:99:a9:a7:5a:83:ef:1d: 97:a3:75:4c:04:d9:3e:7f:be:e7:31:25:56:48:a5: c1:41:08:ea:bc:19:0e:4a:01:c2:cc:33:8c:b1:02: 3c:2a:10:72:d8:6e:00:79:17:1d:45:4c:30:c1:f0: f1:ef:d8:55:ab:64:8b:17:a3:cd:42:a1:d6:fc:b6: a5:61:74:54:cf:f3:eb:79:50:97:6d:0d:4f:b4:6a: f9:4c:ca:58:8e:81:17:f0:13:ec:60:35:88:64:0d: 02:61:21:78:bf:fd:4f:0c:ed:01:1f:40:ce:a7:48: 09:40:18:49:fa:20:4d:f1:a9:86:6a:53:f6:6a:af: 3f:32:7f:6d:41:02:f8:9e:2f:7b:8a:48:ee:ec:c0: 5b:f9:9e:3c:b4:b9:69:05:a9:26:cf:62:32:9d:f9: 88:31 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 9C:B0:36:7C:B7:9C:06:A7:58:7C:3F:81:F7:BE:59:D6:C9:DF:36:EF X509v3 Authority Key Identifier: keyid:F8:DF:40:E4:C9:5F:9E:BF:81:45:38:70:73:69:95:E9:1B:BB:92:F7 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://repo-rpki.idnic.net/repo/8d03af01-f239-4a1f-81cd-4106bebb2a22/0/F8DF40E4C95F9EBF81453870736995E91BBB92F7.crl Authority Information Access: CA Issuers - URI:rsync://repo-rpki.idnic.net/repo/IDNIC-ID/2/F8DF40E4C95F9EBF81453870736995E91BBB92F7.cer Subject Information Access: Signed Object - URI:rsync://repo-rpki.idnic.net/repo/8d03af01-f239-4a1f-81cd-4106bebb2a22/0/F8DF40E4C95F9EBF81453870736995E91BBB92F7.mft X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: inherit IPv6: inherit sbgp-autonomousSysNum: critical Autonomous System Numbers: inherit Signature Algorithm: sha256WithRSAEncryption 78:98:94:4b:61:ec:ab:c5:87:e5:8d:9f:13:2b:a9:51:f8:25: 37:06:f5:00:b6:cd:ea:59:c3:a5:b3:24:3d:cb:da:48:c7:1c: 7a:e1:b0:30:d8:34:03:36:3e:84:57:7b:ef:0f:53:58:d2:89: 60:19:b1:ef:44:7f:98:79:03:1e:9d:6f:55:23:f3:ba:20:53: c6:cc:f6:1d:09:fd:dc:a1:d7:6c:d6:9b:82:03:bd:35:3c:7a: 0f:14:3c:84:30:f7:9b:23:5d:9e:be:4e:df:8c:22:02:78:b7: cb:78:d8:5d:f2:95:71:d9:59:60:29:eb:a3:a0:61:8e:6c:fb: 5b:a0:9d:62:f1:78:8c:da:79:0d:61:cc:50:ba:23:39:bd:cc: 77:46:90:b1:36:fe:65:5e:f1:e1:64:5f:cc:05:0f:55:ff:fc: 5f:13:df:6f:73:80:12:f6:9c:7f:ec:a9:14:86:6b:27:df:23: 79:e5:7d:1f:da:85:c2:3c:21:1c:f9:ec:00:0c:a8:54:d1:a1: aa:c7:9f:d6:c1:69:2e:2e:b0:2c:1a:19:99:bf:cb:25:b0:09: 68:1c:56:69:91:01:b0:fb:a8:cf:65:cd:66:9e:24:a6:f6:c7: 39:d7:94:5d:de:cf:08:ea:0e:ca:e8:e5:d0:9a:ce:52:86:60: 9b:75:84:4a -----BEGIN CERTIFICATE----- MIIFMjCCBBqgAwIBAgIUYpk1wYlrTAYIMaIsWVMUN8V+z+YwDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoRjhERjQwRTRDOTVGOUVCRjgxNDUzODcwNzM2OTk1RTkx QkJCOTJGNzAeFw0yNTA4MDcxMjI1MDFaFw0yNTA4MTAxNzQ3MDFaMDMxMTAvBgNV BAMTKDlDQjAzNjdDQjc5QzA2QTc1ODdDM0Y4MUY3QkU1OUQ2QzlERjM2RUYwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDMHqb1EaPtdl76jlOJIpW/CxEX h4RzI1Iz/zTPn5DV4lM3hgKYKHIwhSyQJFgiP2GQFBNYkmTF8YlYJnoHpswsXFgW TvgrnkzJkyN1tdfX3MW6NyM58xbq8Ghkd0IOyoMZmamnWoPvHZejdUwE2T5/vucx JVZIpcFBCOq8GQ5KAcLMM4yxAjwqEHLYbgB5Fx1FTDDB8PHv2FWrZIsXo81Codb8 tqVhdFTP8+t5UJdtDU+0avlMyliOgRfwE+xgNYhkDQJhIXi//U8M7QEfQM6nSAlA GEn6IE3xqYZqU/Zqrz8yf21BAvieL3uKSO7swFv5njy0uWkFqSbPYjKd+YgxAgMB AAGjggI8MIICODAdBgNVHQ4EFgQUnLA2fLecBqdYfD+B975Z1snfNu8wHwYDVR0j BBgwFoAU+N9A5Mlfnr+BRThwc2mV6Ru7kvcwDgYDVR0PAQH/BAQDAgeAMIGFBgNV HR8EfjB8MHqgeKB2hnRyc3luYzovL3JlcG8tcnBraS5pZG5pYy5uZXQvcmVwby84 ZDAzYWYwMS1mMjM5LTRhMWYtODFjZC00MTA2YmViYjJhMjIvMC9GOERGNDBFNEM5 NUY5RUJGODE0NTM4NzA3MzY5OTVFOTFCQkI5MkY3LmNybDB0BggrBgEFBQcBAQRo MGYwZAYIKwYBBQUHMAKGWHJzeW5jOi8vcmVwby1ycGtpLmlkbmljLm5ldC9yZXBv L0lETklDLUlELzIvRjhERjQwRTRDOTVGOUVCRjgxNDUzODcwNzM2OTk1RTkxQkJC OTJGNy5jZXIwgZMGCCsGAQUFBwELBIGGMIGDMIGABggrBgEFBQcwC4Z0cnN5bmM6 Ly9yZXBvLXJwa2kuaWRuaWMubmV0L3JlcG8vOGQwM2FmMDEtZjIzOS00YTFmLTgx Y2QtNDEwNmJlYmIyYTIyLzAvRjhERjQwRTRDOTVGOUVCRjgxNDUzODcwNzM2OTk1 RTkxQkJCOTJGNy5tZnQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjAhBggrBgEF BQcBBwEB/wQSMBAwBgQCAAEFADAGBAIAAgUAMBUGCCsGAQUFBwEIAQH/BAYwBKAC BQAwDQYJKoZIhvcNAQELBQADggEBAHiYlEth7KvFh+WNnxMrqVH4JTcG9QC2zepZ w6WzJD3L2kjHHHrhsDDYNAM2PoRXe+8PU1jSiWAZse9Ef5h5Ax6db1Uj87ogU8bM 9h0J/dyh12zWm4IDvTU8eg8UPIQw95sjXZ6+Tt+MIgJ4t8t42F3ylXHZWWAp66Og YY5s+1ugnWLxeIzaeQ1hzFC6Izm9zHdGkLE2/mVe8eFkX8wFD1X//F8T329zgBL2 nH/sqRSGayffI3nlfR/ahcI8IRz57AAMqFTRoarHn9bBaS4usCwaGZm/yyWwCWgc VmmRAbD7qM9lzWaeJKb2xznXlF3ezwjqDsro5dCazlKGYJt1hEo= -----END CERTIFICATE-----Generated at Fri Aug 8 12:48:04 2025 by rpki-client